693 Security Developer jobs in Indonesia

At Stockbit & Bibit, we prioritize the security of our applications and the data of our users. As an Application Security Engineer, you will play a vital role in ensuring the security and integrity of our software and systems. You will work closely with our development teams to identify and remediate security vulnerabilities, conduct penetration testing, and implement best practices to safeguard our applications and infrastructure.

• Secure Code Review: Conduct thorough code reviews to identify and address security flaws, including vulnerabilities like SQL injection, cross-site scripting (XSS), and insecure direct object references (IDOR).
• Security Testing: Design and execute various security tests, such as penetration testing, vulnerability scanning, and static/dynamic analysis, to proactively uncover weaknesses in the application.
• Threat Modeling: Collaborate with development teams to identify potential threats and vulnerabilities, assess their impact, and develop effective mitigation strategies.
• Bug Bounty: Triage and validate bug reports submitted by external researchers.
• Security Architecture: Provide guidance on secure architecture and design patterns to ensure that security is built into the application from the ground up.
• Incident Response: Assist in the investigation and remediation of security incidents, working to minimize the impact and prevent future occurrences.
• Security Awareness: Educate development teams about security best practices and promote a culture of security within the organization.
• Stay Informed: Keep up-to-date with the latest security trends, vulnerabilities, and attack techniques to ensure the application remains protected against evolving threats.

• Bachelor's degree in Computer Science, Engineering, or a related field.
• At least 3 years of experience in application security, secure coding practices, and vulnerability management.
• Strong understanding of web application vulnerabilities, OWASP Top 10, and modern attack vectors.
• Hands-on experience with web application security testing tools such as Burp Suite, OWASP ZAP, etc.
• Experience with secure coding practices and common programming languages (e.g., Java, Python, NodeJS).
• Knowledge of cloud security principles and best practices.
• Certifications such as CISSP, CEH, or OSCP are a plus.
• Strong problem-solving and analytical skills.
• Excellent communication and collaboration abilities to work effectively with cross-functional teams.

• Capital market sharing session
• Self development program
• Health insurance benefits
• Well being and counseling program

• Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 6 years of experience in application security, software development, or security consulting.
• Proven experience with secure coding practices (e.g., OWASP Top 10) and security testing methodologies.
• Strong understanding of threat modeling, risk assessment, and vulnerability management.
• Experience with penetration testing tools and techniques.
• Proficiency in at least one programming language (e.g., Python, Java, C#, JavaScript).
• Familiarity with CI/CD pipelines and DevSecOps principles.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to explain technical security concepts to both technical and non-technical audiences.
• Relevant security certifications (e.g., CISSP, CEH, OSCP) are a plus.

• Integrate security into the software development lifecycle (SDLC) through robust DevSecOps practices.
• Conduct threat modeling and risk assessments for new and existing applications.
• Perform security code reviews to identify vulnerabilities and provide remediation guidance.
• Develop and enforce secure coding standards and guidelines.
• Evaluate, implement, and manage application security tools, such as SAST, DAST, and SCA.
• Collaborate with development teams to design and implement secure authentication, authorization, and data protection mechanisms.
• Assist in the response to and investigation of security incidents related to applications.
• Develop and deliver security awareness training to engineering teams.
• Stay current with emerging application security threats, vulnerabilities, and mitigation techniques.
• Contribute to the architecture and design of secure, scalable applications.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 7 years of experience in application security, secure software development, or a related cybersecurity role.
• In-depth knowledge of common web application vulnerabilities (OWASP Top 10) and their mitigation.
• Proficiency in secure coding practices across multiple programming languages (e.g., Java, Python, C++, JavaScript).
• Hands-on experience with SAST, DAST, SCA, and other application security testing tools.
• Experience with cloud security principles and technologies (AWS, Azure, GCP).
• Understanding of cryptography, authentication protocols, and authorization mechanisms.
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration skills, adept at working effectively in a remote team.
• Relevant security certifications such as CISSP, CSSLP, or GIAC-GWEB are highly desirable.

• Collaborate with development teams to integrate security practices into the SDLC, fostering a 'secure by design' culture.
• Perform security code reviews to identify vulnerabilities, insecure coding patterns, and potential weaknesses.
• Conduct application penetration testing and vulnerability assessments to uncover security flaws.
• Develop, implement, and maintain security testing tools and frameworks (SAST, DAST, IAST) for automated security checks.
• Analyze and prioritize identified vulnerabilities, providing clear remediation guidance to development teams.
• Respond to and investigate security incidents related to applications.
• Develop and deliver security training and awareness programs for development teams.
• Contribute to the development of secure coding standards and guidelines.
• Stay current with emerging application security threats, vulnerabilities, and mitigation techniques.
• Assist in the selection and implementation of security technologies and tools.
• Design and implement security controls for cloud-based applications and infrastructure.
• Contribute to the threat modeling of applications.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, or equivalent practical experience.
• Minimum of 5 years of experience in application security, software development, or a related security engineering role.
• Strong understanding of common web application vulnerabilities (e.g., OWASP Top 10) and mitigation techniques.
• Experience with security code review methodologies and tools.
• Proficiency in conducting penetration testing and vulnerability assessments.
• Experience with SAST, DAST, and IAST tools.
• Familiarity with secure coding practices and SDLC security integration.
• Knowledge of cloud security principles (AWS, Azure, GCP) and container security is a plus.
• Experience with scripting languages (e.g., Python, Bash) for security automation.
• Excellent communication, collaboration, and problem-solving skills.
• Relevant security certifications such as OSCP, CISSP, CSSLP are highly desirable.
• Ability to work independently and effectively manage responsibilities in a remote environment.

• Develop and implement application security standards, policies, and procedures.
• Conduct security reviews of application designs, architecture, and code.
• Perform vulnerability assessments and penetration testing on web and mobile applications.
• Work with development teams to remediate identified security vulnerabilities in a timely manner.
• Integrate security tools and processes into the CI/CD pipeline (e.g., SAST, DAST, SCA).
• Provide security training and guidance to software developers and engineers.
• Stay current with emerging application security threats, vulnerabilities, and mitigation techniques.
• Contribute to the development of secure coding guidelines and best practices.
• Evaluate and recommend security tools and technologies to enhance application security posture.
• Investigate and respond to security incidents related to applications.
• Maintain documentation of application security controls and processes.
• Champion a security-first mindset across all engineering teams.

• Bachelor's degree in Computer Science, Cybersecurity, or a related technical field, or equivalent practical experience.
• 5+ years of experience in information security, with a strong focus on application security.
• Proven experience with SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools.
• Deep understanding of OWASP Top 10 vulnerabilities and mitigation strategies.
• Experience with secure coding principles and practices across multiple programming languages (e.g., Java, Python, Node.js, C#).
• Familiarity with container security (Docker, Kubernetes) and cloud-native security concepts.
• Excellent analytical, problem-solving, and communication skills.
• Ability to collaborate effectively with cross-functional teams in a remote setting.
• Relevant security certifications such as CSSLP, OSCP, or CISSP are highly desirable.
• Experience with API security best practices.
• Familiarity with threat modeling techniques.

• Perform security assessments, code reviews, and penetration testing of web applications and APIs.
• Identify, analyze, and prioritize security vulnerabilities.
• Collaborate with development teams to remediate security findings.
• Develop and implement secure coding standards and guidelines.
• Design and implement security controls for cloud-native applications.
• Automate security testing and integrate into CI/CD pipelines.
• Conduct threat modeling and risk assessments for new features and services.
• Develop incident response plans for application security events.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Provide security training and awareness to development teams.

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Minimum of 7 years of experience in application security engineering.
• Proven experience in performing security assessments and penetration testing.
• In-depth knowledge of web application vulnerabilities and secure coding practices (OWASP).
• Experience with securing applications in cloud environments (AWS, Azure, GCP).
• Proficiency in security tools such as SAST, DAST, and IAST.
• Strong understanding of networking, operating systems, and cryptography.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and effectively in a remote team.
• Relevant security certifications (e.g., CISSP, CEH, OSCP) are a plus.

Responsibilities:

• Conduct security testing for applications and infrastructure.
• Identify vulnerabilities, patch them, and recommend best practices.
• Coordinate with vendors regarding security.
• Help the team understand and increase security awareness.

Requirements:

• 2–4 years of experience in security/infrastructure/applications.
• Familiarity with security testing tools (Burp Suite, Nessus, OWASP ZAP, etc.).
• Understanding of networking, operating systems, and cloud security concepts.
• Communicative and collaborative.
• Certification (CEH, OSCP, or similar) would be a plus.
• Experience in financial systems would be a plus.

About the role

We are seeking a driven Security Engineer to join our talented team at PT Mitra Solusi Infokom in West Jakarta, Jakarta. In this full-time role, you will play a crucial part in maintaining and enhancing the security infrastructure of our client's organization, ensuring the protection of our valuable data and systems.

What you'll be doing

• Handling second level support for technical issues especially Security, Firewall, Data encryption and other security products
• Installation, configuration of the device and Troubleshoot
• Assist Presales for conducting proof of concept
• Collaborate with another departments related to project plans, customer prospects, and ongoing projects
• Reporting and documentation to Operation Manager
• Responsible for fulfillment of Certification teams
• Implement solutions to customers

What we're looking for

• Minimum bachelor's degree in Computer & Technology
• Related experience with the same position, with minimum 2 years experiences
• Have Security professional certification will be an advantages (Fortinet / Palo Alto / Cisco)
• Experiences in implementing Fortinet, Cisco, Cybersecurity solution products would be an advantage
• Good in interpersonal skill, communication and able to work as part of team
• Able to work independently with strong initiative and problem solver attitude

What we offer

At PT Mitra Solusi Infokom, we are committed to providing a supportive and enriching work environment. We offer competitive remuneration, opportunities for career development, and a range of benefits to ensure a healthy work-life balance. Join us and be a part of our mission to secure the future of our business and our clients.

About us

PT Mitra Solusi Infokom is a leading provider of information and communication technology solutions in Indonesia. With a strong focus on security and innovation, we partner with our clients to deliver tailored solutions that empower their businesses and protect their most valuable assets.

Apply now and become a key member of our security team